h323remoteaddress -sql.conf
Hello people,i just added the h323remoteaddress parameter to my mysql
database and updated the sql.conf file
(to insert the h323remoteaddress in the db) like the following:
I added the h323remoteaddress in the accounting_start_query:
accounting_start_query = "INSERT into radacct (RadAcctId,
AcctSessionId, AcctUniqueId, UserName, Realm,
NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctStopTime,
AcctSessionTime, AcctAuthentic, ConnectInfo
_start, ConnectInfo_stop, AcctInputOctets, AcctOutputOctets,
CalledStationId, CallingStationId, AcctTerminateCa
use, ServiceType, FramedProtocol, FramedIPAddress, AcctStartDelay,
AcctStopDelay,h323remoteaddress) values('',
'%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}',
'%{Realm}', '%{NAS-IP-Address}', '%{NAS-
Port-Id}', '%{NAS-Port-Type}', '%S', '0', '0', '%{Acct-Authentic}',
'%{Connect-Info}', '', '0', '0', '%{Called-
Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}',
'%{Framed-Protocol}', '%{Framed-IP-Address}', '%{
Acct-Delay-Time}', '0','%{h323remoteaddress}')"
after that i got this error:
sql_set_user: escaped user --> '555334433'
radius_xlat: 'INSERT into radacct (RadAcctId, AcctSessionId,
AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType,
AcctStartTime, AcctStopTime, AcctSessionTime, AcctAuthentic,
ConnectInfo_start, ConnectInfo_stop, AcctInputOctets, AcctOutputOctets,
CalledStationId, CallingStationId, AcctTerminateCause, ServiceType,
FramedProtocol, FramedIPAddress, AcctStartDelay,
AcctStopDelay,h323remoteaddress) values('', '1AC8', '',
'1150930808', '', '200.73.182.8', '', 'Async', '2002-08-30 12:30:38',
'0', '0', '', '', '', '0', '0', '00495', '555334433', '',
'Login-User', '', '', '0', '0')'
rlm_sql: Reserving sql socket id: 2
rlm_sql: Couldn't update SQL accounting for START packet - Column count
doesn't match value count at row 1
radius_xlat: 'UPDATE radacct SET AcctStartTime = '2002-08-30 12:30:38',
AcctStartDelay = '0', ConnectInfo_start = '' WHERE AcctSessionId =
'1AC8' AND UserName = '1150930808' AND NASIPAddress = '200.73.182.8'
AND AcctStopTime = 0'
rlm_sql: Released sql socket id: 2
So i also added the parameter to the accounting_stop_query_alt query
,the error message is gone but i am not getting any
input in the db(h3232remoteaddres values)
Any ideas?,does anyone has a working sql.conf/voip example(extract of
the needed querys) i might find usefull?
I think this queries are the problem because all the other data is being
inserted in the db without any problem..
Thanks in advance,sorry for the long mail.
Hernan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
radius parser
I apologize for my last post,it was not addecuate to the list's etiquette.. i have been looking in the faq and the list archive for a radius Voip log parser but have'nt found any log parser reference(except radius report,which i am already modyfing/working on),does anyone knows about a voip/radius parser that i could use.. Thanks in advance Hernan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: radwho -d option
Hello all,i am looking for a radius/freeradius log parser,i am working on some perl regular expresions,but i would like to speed up the process, so if theres something already developed,it would save me some time.. Thanks in advance Hernan -Mensaje original- De: Alan DeKok [mailto:[EMAIL PROTECTED]] Enviado el: Friday, August 16, 2002 2:53 PM Para: [EMAIL PROTECTED] Asunto: Re: radwho -d option Andrea Gabellini <[EMAIL PROTECTED]> wrote: > I notice that also other programs like radzap and raduse use the default > location of the radutmp. If you like my previous patch I can try to modify > them with the -d option. On a quick scan, the patch looks good, so I'd say sure. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: as5300 telnet access
> Sending Access-Reject of id 19 to 10.0.0.1:1645 --> I am using 1812 in
> radiusd.conf
So what heppened BEFORE this?
I am sorry that's from the previous loggin attempt
If the accounting ports are not important,the only error like messages
i got are the following:
modcall[preacct]: module "preprocess" returns noop
rlm_realm: Looking up realm NULL for User-Name = "Jhon"
rlm_realm: No such realm NULL
modcall[preacct]: module "suffix" returns noop
modcall[preacct]: module "files" returns noop
modcall: group preacct returns noop
I am looking for this error but,i can not find anything in the web.
Sending Accounting-Response of id 53 to 10.0.0.1:1646
Any idea why the user is being rejected?
Thanks again
Hernan
--- Walking the entire request list ---
Cleaning up request 8 ID 52 with timestamp 3d3c6116
Nothing to do. Sleeping until we see a request.
rad_recv: Accounting-Request packet from host 10.0.0.1:1646, id=53,
length=125
NAS-IP-Address = 10.0.0.1
NAS-Port = 2
NAS-Port-Type = Virtual
User-Name = "Jhon"
Calling-Station-Id = "10.0.0.2"
Acct-Status-Type = Stop
Acct-Authentic = RADIUS
Service-Type = NAS-Prompt-User
Acct-Session-Id = "071D"
Login-Service = Telnet
Login-IP-Host = 10.0.0.1
Acct-Terminate-Cause = User-Request
Acct-Session-Time = 107
Acct-Delay-Time = 0
modcall: entering group preacct
modcall[preacct]: module "preprocess" returns noop
rlm_realm: Looking up realm NULL for User-Name = "Jhon"
rlm_realm: No such realm NULL
modcall[preacct]: module "suffix" returns noop
modcall[preacct]: module "files" returns noop
modcall: group preacct returns noop
modcall: entering group accounting
radius_xlat: '/home/raddb/var/log/radius/radacct/10.0.0.1/detail'
rlm_detail:
/home/raddb/var/log/radius/radacct/%{Client-IP-Address}/detail expands
to /home/raddb/var/log/radius/radacct/10.0.0.1/detail
modcall[accounting]: module "detail" returns ok
modcall[accounting]: module "unix" returns ok
radius_xlat: 'Jhon'
modcall[accounting]: module "radutmp" returns ok
modcall: group accounting returns ok
Sending Accounting-Response of id 53 to 10.0.0.1:1646
Finished request 9
Going to the next request
-----Mensaje original-
De: Alan DeKok [mailto:[EMAIL PROTECTED]]
Enviado el: Monday, July 22, 2002 4:46 PM
Para: [EMAIL PROTECTED]
Asunto: Re: as5300 telnet access
Hernan Marcelo Salvarezza <[EMAIL PROTECTED]> wrote:
> Hello all,i am trying to configure an as5300 to authenticate telnet
> connections to my freeradius
> but i keep getting authentication failed,i wanted to check out if
> everything is ok..
Then run it in debugging mode, and read the results.
> This is the debug output from the freeradius sever:
>
>
> Sending Access-Reject of id 19 to 10.0.0.1:1645 --> I am using 1812 in
> radiusd.conf
So what heppened BEFORE this?
> rad_recv: Accounting-Request packet from host 10.0.0.1:1646, id=20,
> length=109
...
> Sending Accounting-Response of id 20 to 10.0.0.1:1646---> The problem
> seems to be here..
This is accounting, which has nothing to do with authentication.
The user was already rejected, so they can't log in.
> I only have the 1812,1813 ports configured in the as5300,i tried to
> configure 1845,1846 but
> the results are the same..any ideas why the Response is being sent
> trough the 1646 port
> Sending Accounting-Response of id 20 to 10.0.0.1:1646--->
The source port of the Accounting-Request packet from the NAS is not
important. It can be anything, and I very much doubt that you can
configure it.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
as5300 telnet access
Hello all,i am trying to configure an as5300 to authenticate telnet
connections to my freeradius
but i keep getting authentication failed,i wanted to check out if
everything is ok..
I already have the as5300 logging voip connections to the radius server
without any problem..
Sorry for the long mail
The config. goes as follows:
Jhon is a valid username in the cisco as5300
Users file:
mike Auth-Type := Local, User-Password == "lem1"
Reply-Message = "Hello, %u"
mike2Auth-Type := Local, User-Password == "lem1"
Reply-Message = "Hello, %u"
JhonPassword = "tryout" --> The same password as in the cisco
device
User-Service-Type = Login-User,
Login-Host = 10.0.0.1,
Login-Service = Telnet
This is the debug output from the freeradius sever:
Sending Access-Reject of id 19 to 10.0.0.1:1645 --> I am using 1812 in
radiusd.conf
Waking up in 4 seconds...
rad_recv: Accounting-Request packet from host 10.0.0.1:1646, id=20,
length=109
NAS-IP-Address = 10.0.0.1
NAS-Port = 2
NAS-Port-Type = Virtual
User-Name = "Jhon"
Calling-Station-Id = "10.0.0.2"
Acct-Status-Type = Stop
Acct-Authentic = RADIUS
Service-Type = NAS-Prompt-User
Acct-Session-Id = "0716"
Acct-Terminate-Cause = User-Error
Acct-Session-Time = 2
Acct-Delay-Time = 0
modcall: entering group preacct
modcall[preacct]: module "preprocess" returns noop
rlm_realm: Looking up realm NULL for User-Name = "Jhon"
rlm_realm: No such realm NULL
modcall[preacct]: module "suffix" returns noop
modcall[preacct]: module "files" returns noop
modcall: group preacct returns noop
modcall: entering group accounting
radius_xlat: '/usr/lcoal/raddb/var/log/radius/radacct/10.0.0.1/detail'
rlm_detail:
/home/raddb/var/log/radius/radacct/%{Client-IP-Address}/detail expands
to /home/raddb/var/log/radius/radacct/10.0.0.1/detail
modcall[accounting]: module "detail" returns ok
modcall[accounting]: module "unix" returns ok
radius_xlat: 'Jhon'
modcall[accounting]: module "radutmp" returns ok
modcall: group accounting returns ok
Sending Accounting-Response of id 20 to 10.0.0.1:1646---> The problem
seems to be here..
Finished request 29
Going to the next request
I only have the 1812,1813 ports configured in the as5300,i tried to
configure 1845,1846 but
the results are the same..any ideas why the Response is being sent
trough the 1646 port
Sending Accounting-Response of id 20 to 10.0.0.1:1646--->
Thank you very much,againsorry for the long mail
Hernan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
